VDB
CNVD-2023-80165
CNVD-2023-80165
PUBLISHED
CVSS 7.800000190734863 HIGH
Microsoft Excel是美国微软(Microsoft)公司的一款Office套件中的电子表格处理软件。 Microsoft Excel存在代码执行漏洞,攻击者可利用该漏洞在系统上执行任意代码。
Risk Scores
CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Microsoft Office 2019 | 19.0.0 |
| microsoft | office_online_server | 16.0.1 |
| microsoft | excel | 16.0.0.0, 15.0.0.0 |
| Microsoft | Microsoft 365 Apps for Enterprise | 16.0.1 |
| microsoft | office | 19.0.0, 16.0.0 |
| microsoft | 365_apps | 16.0.1 |
| Microsoft | Microsoft Office 2019 for Mac | 16.0.0 |
| Microsoft | Microsoft Office Online Server | 16.0.1 |
| Microsoft | Microsoft Office LTSC for Mac 2021 | 16.0.1 |
| Microsoft | Microsoft Office LTSC 2021 | 16.0.1 |
| microsoft | office_long_term_servicing_channel | 16.0.1, 16.0.1 |
| Microsoft | Microsoft Excel 2013 Service Pack 1 | 15.0.0.0 |
| Microsoft | Microsoft Excel 2016 | 16.0.0.0 |
Exploit Intelligence
- Microsoft Excel Remote Code Execution Vulnerability (circl)
- rules.yar (github-yara)
- rules.yar (github-yara)
Timeline
- May 12, 2023 CVE ID Reserved
- Oct 25, 2023 CVE Published
- Apr 28, 2025 PoC Published
- Apr 25, 2026 Security Advisory
References
- Microsoft Excel Remote Code Execution Vulnerability vendor-advisory